To establish an effective application security program, organizations need to consider application-level vulnerability management an ongoing process, and focus on process improvement. Cyber attackers ...

Organizations have made strides in recent years to lock down networks' perimeters. But even agencies with the tightest network defenses may find another technology layer open to attack: applications.

CORE Impact can now assess client-side applications and operating systems within Microsoft® Windows and Apple® Mac OS X-based laptop and desktop computers prior to deployment in live environments.

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. In a market still dominated by security vendors Symantec ...

Editor’s note: This is part one in a two-part series on clearing up misunderstandings people have regarding vulnerability assessments. Part two, which will examine who should conduct vulnerability ...

Application security posture management platform company Bionic Inc. today launched two new features to help customers understand and manage the vulnerabilities and threats to their applications more ...

Every couple of weeks, a project comes across my desk that requires some sort of Web application vulnerability assessment or penetration test. It's one of the more fun things I get to do, and I rely ...

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...

Web application vulnerabilities put critical business applications and back-end databases at risk from attack, theft and fraud. The Payment Card Industry Data Security Standard (PCI DSS, or PCI), ...

Another day, another breach. Cloud infrastructure misconfigurations were one of the top three causes of data breaches in 2021, but these types of attacks have been plaguing businesses for the last ...

The Atlanta-based maker of WebInspect Web application vulnerability assessment software also announced interoperability with the NC-1000 Web security gateway appliance from NetContinuum, a supplier of ...